[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Router SIGSEGV
Hi,
We have found a problem with the router.
You can do a DOS attack by sending a simple
mail.
Creating a To: field in the header like:
To: "\(AnyText"
the router dies with a SIGSEV whitout removing
the message, so it keeps processing it whit the same
result....
Any text, between double quotes starting with a
backslash parenthesis, but without a mail address
between less and greater than.
I'm testing this on a zmailer-2.99.56 version,
but 2.99.56-patch1pre2 has the same problem.
We have been looking but didn't find the problem yet.
So, if somebody can help....
TIA.
Example
=======
EHLO x
MAIL FROM:<test@test.com>
RCPT TO:<some@one.com>
DATA
From: test@test.com
To: "\(Troubles"
Subject: DDOS
asdfg
.
-
To unsubscribe from this list: send the line "unsubscribe zmailer" in
the body of a message to majordomo@nic.funet.fi